This is the most secure operating
system in the world and I hate it. This is Cube's oss. It says
it's a reasonably secure oss, which is kind of funny. It's so paranoid it won't even
call itself the most secure. That's how secure it is. It assumes that nothing is secure
unless you unplug the internet. Never write anything down, never
say anything, never think anything. And finally you have privacy.
But seriously cube's, OSS is really secure and it works with
the assumption that you're going to get hacked and that all software inherently
contains bugs or flaws that will be exploited. They're not wrong. And
here's how they deal with that. Cold, hard truth confine control
and contain the damage. Now I set this up and
I'm not going to lie. It's a pain and I want
you to share in my pain. I'm going to walk you through how to
set this up inside a VM or on a physical computer and we can suffer
together. But seriously, it's actually really fun to set up
and the way it works is fascinating. It's basically a type one hypervisor
oss. So get your coffee ready. Let's dive into how cube's OSS works
and let's also try to make it work. Now, I would not be able to do any of this
stuff if it weren't for our sponsor it Pro by a CI learning. They help
me learn the Linux skills. I need to do stuff like this. We'll talk
more about them here in a moment. Now, cubes, oss, it's nuts. Everything is run out of these
securely isolated compartments. They're kind of like little pods or
cubes. Now get used to that word. I'm going to be saying it a lot. In
fact, video editor, throw up a counter. Let's play your favorite drinking game. And of course I'm talking about coffee
every time I say cubes. Take a sip. You're about to be so awake and
alert and beneficial to society. It's going to be awesome. Now, whenever you want to do anything
on your cube's computer, you'll first decide who you want
to be, which you are you right? Now check this out. Let's
say you want to be work you. So I'll choose my work queue
and I'll launch Firefox. And right now something amazing is
happening, an isolated environment. A little isolated cube is being spun
up and this is essentially a virtual machine. Notice it is taking a while
because it's literally doing that. There it is. So I have my web browser. I might launch my file
manager also in my work cube. And this cube is isolated from
everything else on your computer. Nothing can touch it. Whatever you
do for work stays in that work cube. At the same time, you can decide to
be another you. Maybe the weird you. So you'll launch your weird
cube and your weird Firefox. And in this moment another
virtual machine, an isolated
cube is being spun up. I even get a little status up
here. Cube weird has started. And I also might want
to launch my Honix cube, which contains my tour browser and
it will securely connect me to tour. Now it might seem like these apps are
running side by side, but they're not. Each of them are in their own
secure isolated compartment. A cube, a virtual machine essentially,
and they're protected. So the dark web view doesn't mess up
the weird view and neither of them touch the work you. You're essentially running apps on
different computers all in one place. It's magic. And this magic is
virtualization. It always is. Oh, and notice real quick, each
one of these is color coded. So you see that the work is both in
blue, who makes is yellow, weird is red. So you know which cube you're
interacting with. Easy to spot. Now remember when I said that cube's OSS
essentially is a type one hypervisor. oss, I was serious cube's
uses zen based virtualization, which is based on the Zen Project
Hypervisor and open source type one hypervisor. And if all these words kind
of scare you, like virtual machines, hypervisor, what is that? I've got a video right here and I'll
show you all about it. It's magic. You don't want to miss it if you
don't understand what this is. Now, no matter where you're at with Linux new
or expert IT Pro by a CI learning has the courses and certification
training you need to become awesome. They have your back with Linux
Essentials. And trust me, when you're messing with cubes or any
other kind of Linux operating system, it's helpful to know the basics.
Laying a good foundation, you don't want to skip that. And if you want to turn your Linux
skills into a job getting a certification like the Comp tl, Linux
plus L pick L, pick two, throwing in some Red Hat certifications,
that's going to make you awesome. And it's not just Linux, they
have all the other stuff too. Pretty much whatever
you want to learn in it. They have it from a plus to cloud to hack. You got practice tests to help you prepare
for your exams and they have labs to help you put that knowledge to
practice to real world skills. So if you want to learn it like
me, check it out, link below. And if you use my Code Network,
Chuck, you'll get 30% off forever. Now we're about to jump into the install, how to install on a physical
computer and in a vm. If you want to jump straight
to that, check the timestamps. But first let's talk
more about cubes. Now, the cubes we've launched
so far here on my system, these are called app cubes and
there are different types of cubes. That's why I'm telling you this right
now. The app cubes are for applications, things you might launch and use. Now, every app cube is based on
what's called a template cube, which consists of a based OSS and a
bunch of apps you might want to commonly have across various app cubes.
So for example, if I look here, I'm going to jump into what's called my
cube manager, cube tools cube Manager. So here you can see we have a list
of our cubes, but also the templates. Like right here we have our onic templates
and we can tell that because right here in the template column
it's labeled as a template vm. Over here we have our Fedora template,
and here we have our Debian 11 template. Notice each one of these is a different
oss and all of our apps will use various templates. See, most of our
stuff is actually using Fedora, but I could change that right here, change my personal to use
the Debian 11 and changed. And if we were to jump into
any of these templates, let's say Debian 11 and go to settings, we could change a lot of stuff about
these from firewall rules to the devices that allowed to use. And of course the
applications right now it's using files, Firefox and Terminal. We can give it
Thunderbird. Let's give it Thunderbird. There you go, fly. Okay. And now every cube that uses that template
will now have Thunderbird that what's cool about templates is that
we can maintain and update
our core applications in one place, the template and then every other cube
will automatically have an updated version of let's say fire finds. But
hold up. Let's say something bad happens. Maybe our weird cube gets hacked, it
gets a virus, something's going on. What do we do? We don't do anything.
It's isolated to that one cube. So it won't touch our honix cube or our
work cube and it won't even touch the template. The cubes themselves, the
app cubes cannot interfere, change, modify at all the original
template. So we're safe. Shoot, I think it's infected. Just
shut it down. No worries. Now here are the coolest
cubes. I think there are. I told you there's so many cubes. We
have a thing called service cubes. Literally everything on this
OSS is isolated, controlled, and that includes things like USB devices
that would be its own cube network. A network connection will be given
via a system cube or a service cube. And you can actually see them right now
in our cube manager, we still have up, we've got cis USB cis net SIS firewall. And if I look at my personal
cube and I edit those settings, if I go to network here, I can choose
which network cube it'll use. Right now, by default it's using the CIS firewall, which as it might sound like is a
firewall cube meant to prevent things from coming in where you go straight csnet
with limited firewall rules or connected to the tour network, CIS hun. So it's just crazy that the control of
USB devices and the control of networking devices is also isolated. It's like a compartment and
we just kind of like Legos, connect them to whatever
service we need or disconnect. Two more cubes you want to know about. One we're not really going to see very
much. It's called the management cube. It does a lot of management,
a lot of background stuff. But the most important cube, our last one
we're going to talk about is DOM zero. He is our admin cube. The most
precious cube. It's the master, it's the root user kind of. It manages all the other cubes
and pretty much the entire system, it's the most trusted. And if it were
ever compromised, pack your bags, you're going home, you're done. Set
your computer on fire, walk away. That's why cubes, OSS treats
DOM zero. The admin cube, like Smeal treats the ring of power.
It's just precious. Nothing can touch. Precious dom Zero has no
internet connection and it
should only be worried about running the desktop environment
and the Windows manager, that's it. You shouldn't use it for anything. Now
we could launch a terminal and DOM zero. So if I went to my app launcher here
and I launched just the terminal, I could tell at the top of
the terminal it says Dom zero. That's where I'm at pinging anything,
I got nothing. It's isolated. And also at the top here,
top right in our tray, we can see all our running cubes and we
can do things like run a quick terminal, shut 'em down, restart. We can see Dom running at the top and
seeing how much resources each cube is using. I know you want to try
it. This looks cool, right? It looks fun even if you don't want to
use it as your main oss and you're not as paranoid as all the big people we know
who use it like Edward Snowden and others. It's just fun to play
with. So let's do that right now. Now whether you're installing
cube's, OSS on a physical computer, bare metal or a virtual machine and they
have the same system requirements and it's a lot, don't want to stress you
out or let it, I don't know. For CPU, they'll definitely want a
64 bit CPU fairly modern and
it needs something called Intel VT dash X enabled, which is their virtualization
technology and that's with EPT. It's not important what
all these stand for. Just know you need to have this
enabled and available for a MD. It's called A MDV with RVI. And it'll
also need something called I-O-M-M-U, which is normally just baked
into the virtualization setting. So if you enable those two options
for whatever processor you have, this will normally just kind of be there
if you have issues and it's probably not there. And we are running out of room, so I'm going to bring it
right over here for memory. This is where it gets kind of painful.
Minimum six gigs of RAM recommended 16. Now when you're installing on a
physical computer or bare metal, most laptops or computers have eight
to 16 gigs of ram. Not a problem. Most of the time you definitely
want 16 though, trust me. But as a virtual machine, your
computer needs 16 gigs of RAM extra. Now I'm running 64 here. I can
do that. Just keep that in mind. If you want to run it in a VM
like I'm about to show you, you'll need a lot of extra RAM as far as
storage, this is our last requirement. Minimum is 32 gigs recommended
as 128. Now I will say this, when setting up the virtual
machine, I had to do 1 28. It did not work anything
else. So keep that in mind. You'll need a ton of RAM and 128 gigs of
extra storage to run this in a virtual machine on your computer right now. Now I got to say this officially cubes
does not support running inside a virtual machine. They're like don't do it. They really only support installing
it on bare metal and they have a few hardware devices that they
actually officially approve. Things I've never heard of, but
I installed it on this actually, lemme go get it. I installed it on this ROG laptop and so
I didn't have to overwrite the existing operating system. I installed it on
two a portable SSD, which you can do. So if I didn't scare you away,
let's install cubes right now. The first thing we'll do
is download a cube's iso. I'll have a link for that below and
we'll download the stable release here. So the first one's like a testing release. I don't want to help him
test anything right now. So I'm going to download the official
4 1 2 release this guy right here and downloading. Now if you're going to
install this in a virtual machine, that's all you got to do. If you're going to install this on
physical hardware like this laptop here, you're going to want to write that to
A USB stick, which I was doing this, I had one in my hand, I'll be right
back. So we'll grab our USB drive here, plug it in, and to write
this to the USB stick, we're going to use a tool called
rufuss. I love that. It's called rufuss. It's just fun. It's going to download the portable
version because I don't like installing things. And here in rufuss we're
going to do one very important thing. So first we're going to of course
select our ISO or select our disk first, make sure you are not overriding
anything. I got my 16 gig USB, I'll select my ISO cubes 4 1 2. I'm
going to leave everything as default, but the important thing comes here. I'll click start and say
write and DD image mode. It will not work any other way. So
just click on okay and it's like, okay, we're going to erase everything. I'm
like, cool, we're good. I know, I know. And let it do its thing. Perfect time
for a coffee break network. Check coffee. Now while that's writing, let's spend some time talking about
the virtual machine people. Hi, let's get this set up. Now I
tested out virtual box didn't work. I don't think it fully supports io,
MMU, whatever the case, it was a pain, but what did work and it's still
free is VMware workstation player. It's free to download AVA link below and
it's actually kind of easy to get set up. I wish I would've started
with this from the beginning, but I did all the hard
stuff so you don't have to. So download VMware workstation player, get that installed and just know
this is a type two hypervisor. So what's kind of funny here is we're
going to be installing cubes oss, which is essentially a type one
hypervisor onto a type two hypervisor, which is weird. And what we're going to be
doing is something called
nested virtualization where we're going to be first
of all virtualizing R OSS
by creating cubes and then cubes will be virtualizing its OSS
by creating the individual cubes, nested virtualization. It's kind of
magic that we're doing this. I love it. Again, cubes is like don't do that with their
ISO downloaded in VMware workstation installed. Let's try it out. Don't
worry. Physical computer people. We're going to touch on
your stuff here in a second. Here in VMware workstation 17 player,
I'm going to click on playa. Sorry, I did not mean to do that. Just came out.
Click on file and new virtual machine. Well then select installer, disc image
file or iso. We're going to use that. We'll go find it real quick. I'll
browse to my cube's. 4 1 2 download, click on next. You want to make sure that you have Linux
selected and fedora 64 bit fedora is the base OSS that cubes runs off
of. It's where Dom zero runs. We'll click on next, we'll name it
cubes, cubes, cubes, just something dumb. Click on next and then here is
where you're going to hit a hiccup. If you don't do this, 128 gigs
for the hard drive, just do it. It works for Nike, it works for us. Sorry,
that was a lame joke. The dad jokes, I'm telling you they flow. Well click
on next. And then one more thing. We're going to customize the hardware. Remember that the memory requirements
are pretty steep right now. It's like defaulting to two
gigs. That's not going to cut it. Minimum it wants six. No, I'm going
to do 16. It's hungry, it wants 16. I'm going to feed it what it wants.
You can try six. I can't vouch for now. I'm going to mo you on over to processors
here on the left just below memory. I'm going to increase my processors
to like four so I'll have a good time. And then very important, I'm going
to enable Intel VTX and also io, MMU. Now that is pretty much all I have
to change. I'll click on close, click on finish. I think it may
even start it automatically for us. That doesn't, we'll just do it
ourselves. Yeah, let's go ahead and play. So play virtual machine or just hit the
play icon right here with this virtual machine selected, ready, set,
go. And it is starting now. You're going to see this window. It'll invite you to test the
media and install or just install. I'm just going to jump to
install. Install cubes. Hit enter with that option selected. Keeping in mind on virtual machine
or virtual, can't say this today, VMware workstation 17 player. Hit CTR ALT on your keyboard to get your
mouse back to get it out of that zone. Alright, so that's going to bake for a
second and I'm forewarning you the cubes. OSS install does take a long time.
30 to 45 minutes is what I found. Maybe longer because I just
didn't keep track of time. I was just doing other stuff. So
get you a fresh cup of coffee, you're on your way. But look, things are
happening. That's pretty exciting. Now, virtual people, before we
move on to our next step, let's jump to physical
and get you guys set up. You can see here my Rufuss
has finished writing my disc. I'm going to close that up, grab my
USB drive and plug it into my computer. And of course if you want to install
cubes on an external SSD or hard drive, make sure you have that ready and
plugged in. This is disgusting. Now this will vary based on what
kind of laptop or hardware you have, but boot into your machine
and press F 10, F 12, delete to get into your bio
settings. I'm always just like, I think ROG does delete.
I'm not sure. No it doesn't. What does it do? I'll have to Google it
now. See, it's all different. I hate it. Okay, ROG, you have to hold down F two
while rebooting. Okay, whatever. ROG ha, there we go. Now here I'm going to jump
into advanced mode By hitting F seven, you'll probably want to get into advanced
mode on your bios and there's two things you'll want to change in your
bios to make sure things work correctly. Now, here on this laptop, if
I scroll over to advanced, there's an option called SVM mode, which I can see right here says
Enable disable CPU virtualization. I want that enabled. Mine's
already enabled. Enable yours, it might be Intel V or A MDV. It's
all kind of a little bit different, but around those same
terms, search for that. The other setting that's pretty annoying. We have to change this scrolling over
to security or something like security. And when you see Secure
boot jump in there, we'll want to against your best
judgment, disable secure boot. Without this disabled, I was not able to boot
into my external SSD here. Once cubes is installed,
now we'll say this, if you decide to not use Cubes anymore
and you want to go back to your OSS that's installed in your main desktop,
you'll want to re-enable Secure Boot. Otherwise you can't boot back into your
stuff. Keep that in mind. It scared me. I almost lost it. So make sure you have Secure Boot
Disabled and then we'll hit save and exit. This should reboot your system and then
you'll want to hit whatever key it is for your OS to boot into the boot
options for ROG. I think it's escape. Yeah it is. And then
I'll choose my USB stick, the one I just installed into my laptop, the one that has cubes on
it here I want to select, let me zoom in on that so you
can see it. Install cubes oss. Now for the rest of the install, whether you're doing
virtual machine or physical, it's going to be pretty much
the same. Now also keep in mind, if you're installing cubes
inside a virtual machine, your physical machine that you have this
type two hypervisor running will also need virtualization enabled in your bios. So the same thing we did here on
the physical computer installation. Make sure you have those things
enabled for your main computer. So I'm going to continue here
on virtual machines land. Here we have basic OSS
options. Choose your language. We're then prompted to
select, and it's not obvious, our disc partitioning information.
So we'll click on that. We already have the disc we
created for this VM selected. If you're doing this
on a physical computer, you might have more
than one option For me, I want to choose my Samsung SSD and not
the internal hard drive on my computer. And then you'll have the
option to encrypt your data. I'm just going to uncheck that. I
don't want to do that right now. Click on done here at the top left, scroll down just a bit to set a new
user account and then click on begin installation. Okay, we got it
complete. And you might be like, okay, I'm about to play with this. Not
quite yet, you'll see what I mean. So now we can just click on reboot system
and it will do very much that reboot the system and I'm sorry it's so
small, I just can't resize it. Now we're almost done here.
Again, it's not crazy obvious, but it wants us to click on this cubes
OSS option right here in the middle. Here, we can choose what templates
we want to have installed. Fedora Debbie and 11 who Nicks by
default. I'll install all three. Actually, you know what? For sake of
time I'll take out Debian. You've got a few more options and
if you want to tinker, you can, but for now I'm just going to
leave that B, click on done. And then if you're on player, you're
like, okay, how do I start this? What's going on? I don't
see, I can't scroll down. The finish button is just at the
bottom right, just out of you. You can't see it. It's really annoying. So if you have the selected
HIT tab twice, hit enter. I think we should hit the
finish button. Yes. Okay, so just with that option selected
hitting tab, tab twice, hit enter, it'll finish. It's going
to install these options, which again will take way too
long. So I'll see you in a second. I have an impromptu challenge
sponsored by IT Pro tv. Are you ready? We'll start with the new questions.
Each question is worth 10 points. Question number one, which command is used to view the
contents of a directory in Linux? Here's your options,
pause the video unpause. The answer of course is B
lss. Question number two, what does pseudo or PS do stand
for? Pause the video, go unpause. The answer is be super user. Do
round two intermediate questions. Each question is worth 20 points. Let's see how you do to monitor
real-time system resource usage. Which command would you use in Linux?
Here's your options, pause the video, unpause. The answer is the
top. Question number two, what would you use to manage services
in a system D based Linux machine? Here's your options. Pause the video
unpause. The answer is C system. CTL. Round three, expert level,
get your coffee. Are you ready? Question number one, what is a C group and how does it
differ from a namespace and Linux containerization? Here's your
options. Pause the video unpause. The answer is C, a C. Group control system resource allocation
to processes while a namespace provides a layer of isolation between different
system resources. Last question, here we go. What is the purpose
of the root command and Linux? Here's your options. Pause the
video unpause. The answer is D, to change the apparent route directory
for a running process. How'd you do? Here's the perfect score.
What was yours? Comment below. I want to see your score now after
an eternity. My cubes OSS is ready. I'm going to get logged in. And here we are now again
illustrating how secure cube's OSS is. We're having to allow USB
interaction with the DON zero cube, which again is the root,
the manager, the boss. Now, because I install the Hun Xix, I
just feel weird when I say that. It's prompted me to say, Hey, do you want to connect to all
the time for your entire system? This system is being, what does
it say censored. You can do that, but I prefer just to do it myself or run
my specific tour cube, click on next, blah, blah, blah. Yes. Next it'll do its
thing. Connecting to the tour network, setting up relays. You know the drill. If you watch my other videos about
running a tour relay or how to access the dark web securely. Now
this is really tiny. I want to change how this looks
better. Still small but bigger, if that makes sense. And
now we're running cubes. You can add as many cubes as you want. If you want a banking cube to keep
all your banking stuff separated, a research cube with all the apps you
might need for that, you can do that. It's really just up to you. They
also have, and check this out, disposable cubes, which when you launch anything in these
cubes but are files you create things you browse to. When you stop that
cube, everything disappears. It's done. Honestly, it was kind of a pain to set
up and it's kind of not the fastest. I mean it is running virtual machines, several if you're trying to
be very secure. So I get that, but I feel like it could be better. And
also there's kind of better options, like simply running your own virtual
machines might be a better option. I can create a virtual machine
for specific things I want to do. So I have a TU machine for maybe banking. I can do these things myself and that
might end up being easier and possibly more secure. If you want to learn more about how to
update things and do more cool stuff with cubes, they got a ton of documentation.
There's a pretty strong community. I'm not going to cover that here because
I'm going to wipe my hands at this. It's cool, it's powerful. It is
the most secure, but I don't care. I'm just going to still use Windows and
Linux and Mac, but in a different way. I'll catch you guys next time. Wow.
